Zacatecnicke problemy s routerem....

Michal Košík info at michalkosik.com
Tue Dec 19 12:29:38 CET 2006

Previous message: Zacatecnicke problemy s routerem....
Next message: Zacatecnicke problemy s routerem....
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

A uz jsem udelal botu....

Zdravim vsechny,
nechci objevovat Ameriku, ale pokusil jsem se nainstalovat FBSD 6.2 RC1 a
hrat si s nim.
Chci postavit Router a pak FW atd....
Mam tedy standartni 2 sit. karty a pokusil jsem se donutit masinu fungovat
jako klas. router z vnitrni site ven.
Bohuzel jsem asi nepochopil vse, a nebo delam proste nekde chybu, na kterou
nemuzu prijit.
Proste mi to pinga zevnitr jen na vnejsi rozhrani routeru a dal ani tuk....
Posilam v prilohach informace, ktere jsem povazoval za nutne, aby jste se
nekdo orientoval.
Zkuste me nakopnout, please....

Diky Michal.

Takze ty informace:

rc.conf:

# Created: Wed Dec 13 09:54:12 2006
# Enable network daemons for user convenience.
# Please make all changes to this file, not to /etc/defaults/rc.conf.
# This file now contains just the overrides from /etc/defaults/rc.conf.
defaultrouter="172.22.10.1"
gateway_enable="YES"
hostname="Router.bojov"
ifconfig_xl0="inet 172.22.10.110  netmask 255.255.255.0"
ifconfig_rl0="inet 192.168.1.1  netmask 255.255.255.0"
keymap="us.iso"
linux_enable="NO"
sshd_enable="YES"
usbd_enable="NO"
#saver="logo"
#blanktime="60"
moused_enable="YES"
moused_type="auto"

#inetd_enable="YES"

#Volby pro IPFilter pridany 18.12. 21:40
#v loader.conf je: ipl_load="YES" (nebo rucne: kldload ipl.ko)
ipfilter_enable="YES"
ipfilter_program="/sbin/ipf"
ipfilter_rules="/etc/ipf.rules"
ipfilter_flags=""

#Volby pro IPNAT pridany 18.12. 21:40
ipnat_enable="YES"
ipnat_program="/sbin/ipnat"
ipnat_rules="/etc/ipnat.rules"
ipnat_flags=""

ipmon_enable="YES"
ipmon_program="/sbin/ipmon"
ipmon_flags="-D /var/log/ipflog"

ifconfig:

xl0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
 options=8<VLAN_MTU>
 inet 172.22.10.110 netmask 0xffffff00 broadcast 172.22.10.255
 ether 00:10:4b:54:a9:29
 media: Ethernet 10baseT/UTP (10baseT/UTP <half-duplex>)
 status: active
rl0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
 options=8<VLAN_MTU>
 inet 192.168.1.1 netmask 0xffffff00 broadcast 192.168.1.255
 ether 00:08:a1:74:34:74
 media: Ethernet autoselect (100baseTX <full-duplex>)
 status: active
plip0: flags=108810<POINTOPOINT,SIMPLEX,MULTICAST,NEEDSGIANT> mtu 1500
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
 inet6 ::1 prefixlen 128
 inet 127.0.0.1 netmask 0xff000000

netstat:

Routing tables

Internet:
Destination        Gateway            Flags    Refs      Use  Netif Expire
default            172.22.10.1        UGS         0        0    xl0
localhost          localhost          UH          0        0    lo0
172.22.10/24       link#1             UC          0        0    xl0
172.22.10.1        00:50:fc:8c:00:c4  UHLW        2        4    xl0    782
srv01.michalkosik. 00:50:04:4a:f2:0d  UHLW        1      128    xl0   1171
192.168.1          link#2             UC          0        0    rl0
192.168.1.2        00:15:f2:92:fa:81  UHLW        1        4    rl0    939

Internet6:
Destination        Gateway            Flags      Netif Expire
localhost.bojov    localhost.bojov    UHL         lo0
ff01:4::           localhost.bojov    UC          lo0
ff02::%lo0         localhost.bojov    UC          lo0

net.inet.ip:

net.inet.ip.portrange.lowfirst: 1023
net.inet.ip.portrange.lowlast: 600
net.inet.ip.portrange.first: 49152
net.inet.ip.portrange.last: 65535
net.inet.ip.portrange.hifirst: 49152
net.inet.ip.portrange.hilast: 65535
net.inet.ip.portrange.reservedhigh: 1023
net.inet.ip.portrange.reservedlow: 0
net.inet.ip.portrange.randomized: 1
net.inet.ip.portrange.randomcps: 10
net.inet.ip.portrange.randomtime: 45
net.inet.ip.forwarding: 1
net.inet.ip.redirect: 1
net.inet.ip.ttl: 64
net.inet.ip.rtexpire: 3600
net.inet.ip.rtminexpire: 10
net.inet.ip.rtmaxcache: 128
net.inet.ip.sourceroute: 0
net.inet.ip.intr_queue_maxlen: 50
net.inet.ip.intr_queue_drops: 0
net.inet.ip.accept_sourceroute: 0
net.inet.ip.keepfaith: 0
net.inet.ip.gifttl: 30
net.inet.ip.subnets_are_local: 0
net.inet.ip.same_prefix_carp_only: 0
net.inet.ip.fastforwarding: 0
net.inet.ip.process_options: 1
net.inet.ip.sendsourcequench: 0
net.inet.ip.random_id: 0
net.inet.ip.check_interface: 0
net.inet.ip.fragpackets: 0
net.inet.ip.maxfragsperpacket: 16
net.inet.ip.maxfragpackets: 534

ipnat.rules:

#konfiguracni soubor IP NAT
map xl0 192.168.1.1/24 -> 172.22.10.110/24

ipf.rules:

#konfiguracni soubor IP Filtru
pass in all

Previous message: Zacatecnicke problemy s routerem....
Next message: Zacatecnicke problemy s routerem....
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Users-l mailing list